Metasploit Express is security software for security professionals in enterprises and government agencies who need to carry out penetration tests against their systems quickly and easily. It adds a graphical user interface to the Metasploit Framework, the de-facto leader in pentesting tools, and automates many of the tasks that otherwise require custom scripting, such as smart brute forcing, evidence collection, and reporting.

The NeXpose Community Edition is a free, single-user vulnerability management solution specifically designed for very small organizations or individual use. It is powered by the same scan engine as the award-winning NeXpose Enterprise and offers many of the same features.

Inguma is a penetration testing and vulnerability research toolkit. The framework includes modules that discover hosts, gather information, fuzz targets, brute force user names and passwords and attempt exploits. While the current exploitation capabilities are limited, the program provides numerous tools for information gathering and target auditing.

dnscrypt-proxy acts as a DNS proxy between a regular client, like a DNS cache or an operating system stub resolver, and a DNSCrypt-aware resolver, like OpenDNS. The DNSCrypt protocol focuses on securing communications between a client and its first-level resolver. While not providing end-to-end security, it protects the local network (which is often the weakest link in the chain) against man-in-the-middle attacks. It also provides some confidentiality to DNS queries.

Dr. PortScan is a tool for the automatic analysis of port scans in large and complex network infrastructures. The
differences between successive scans of a network can be sent as reports at regular intervals to predefined admins. It uses port scans generated with nmap by default.